jeff377 / owaspantisamy

Automatically exported from code.google.com/p/owaspantisamy
0 stars 0 forks source link

the scanner put ![CDATA[... into the scan results #96

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
If I scan a snippet with style tag for instance 

<style type="text/css">
div.bgHeader {display:none;}
</style>

the scanner return:

<style
      type="text/css"><![CDATA[div.bgHeader {
    display: none;
}
]]></style>

I'm using the original policy antisamy-1.4.1.xml

Original issue reported on code.google.com by nmaas...@googlemail.com on 7 Dec 2010 at 2:18

GoogleCodeExporter commented 8 years ago
You can have a look at 
http://code.google.com/p/owaspantisamy/issues/detail?id=30 to understand why it 
is going this. From what I understand, if you remove your xhtml directive it 
should stop.

I am also looking for a way to prevent that behavior as I need to keep the 
xhtml directive... 

Original comment by fpoliq...@gmail.com on 8 Dec 2010 at 9:06

GoogleCodeExporter commented 8 years ago
Removing xhtml directive works. thx

Original comment by nmaas...@googlemail.com on 9 Dec 2010 at 10:23

GoogleCodeExporter commented 8 years ago

Original comment by arshan.d...@gmail.com on 14 Dec 2010 at 3:17